I use a hardware based firewall, so I do not need a second one... but I'm still interested in the HIPS and sandbox.You could always install Comodo firewall and use the sandbox and HIPS and disable the firewall but Comodo's firewall is excellent and well worth having on your system.
I'm using a Sophos UTM and set up rules manually... the firewall is not needed since I had to manually allow the outbound traffic of the keylogger, so yeah it's unneeded on my setup.Enju- PLEASE don't consider the Firewall nonsense. The Firewall being active with the switch made at 1:26 is absolutely CRITICAL for protection. Without this, things like zero-day keyloggers and Bankers will be able to transmit your data out to the Blackhats; with it in place you are protected whether or not the malware is detected.
Guess desktop.exe, etc... was already there on the system before CIS install, right?I just saw the review by The PC Security Channel and Comodo, once again a total fail. Click a desktop .exe and Comodo will not block it, only if it comes from the internet. CryptoWall here we come.
If FW is set to "block" & "dont show popups" is selected then under VK too no connection is allowed.YN- The Virtual Kiosk can be viewed as specific in that it will work (and work well) when the user calls it up, and only when the user calls it up. The settings I suggest would provide the same protection everywhere all the time. So VK really would not add anything.
Enju- I apologize for reaching a conclusion that was not true. I inferred that you found Outbound network protection to be unneeded (which by your post is obviously not the case at all). It's just after a number of years hearing from Normals that Windows firewall is enough and from IT "Pros" that there isn't any reason to analyze Network traffic I get a little jumpy.